VYPR
High severity7.5NVD Advisory· Published Oct 4, 2024· Updated Jun 3, 2026

CVE-2024-6400

CVE-2024-6400

Description

Cleartext Storage of Sensitive Information, Exposure of Sensitive Information Through Data Queries vulnerability in Finrota Netahsilat allows Retrieve Embedded Sensitive Data, Authentication Bypass, IMAP/SMTP Command Injection, Collect Data from Common Resource Locations.

This issue solved in versions 1.21.10, 1.23.01, 1.23.08, 1.23.11 and 1.24.03.

Affected products

2
  • cpe:2.3:a:finrota:finrota:*:*:*:*:*:*:*:*
    Range: <1.21.10
  • Range: <=1.21.10, <=1.23.01, <=1.23.08, <=1.23.11, <=1.24.03

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.